CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-5024

Cross-site scripting (XSS) vulnerability in mmsearch/design in the Mailman/htdig integration patch for Mailman allows remote attackers to inject arbitrary web script or HTML via the config parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.4%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2011-5024

Gnu » Mailman » Version: 2.0.13

cpe:2.3:a:gnu:mailman:2.0.13
Gnu » Mailman » Version: 2.1

cpe:2.3:a:gnu:mailman:2.1
Gnu » Mailman » Version: 2.1.1

cpe:2.3:a:gnu:mailman:2.1.1
Gnu » Mailman » Version: 2.1.10

cpe:2.3:a:gnu:mailman:2.1.10
Gnu » Mailman » Version: 2.1.11

cpe:2.3:a:gnu:mailman:2.1.11
Gnu » Mailman » Version: 2.1.12

cpe:2.3:a:gnu:mailman:2.1.12
Gnu » Mailman » Version: 2.1.2

cpe:2.3:a:gnu:mailman:2.1.2
Gnu » Mailman » Version: 2.1.3

cpe:2.3:a:gnu:mailman:2.1.3
Gnu » Mailman » Version: 2.1.4

cpe:2.3:a:gnu:mailman:2.1.4
Gnu » Mailman » Version: 2.1.6

cpe:2.3:a:gnu:mailman:2.1.6
Gnu » Mailman » Version: 2.1.7

cpe:2.3:a:gnu:mailman:2.1.7
Gnu » Mailman » Version: 2.1.8

cpe:2.3:a:gnu:mailman:2.1.8
Gnu » Mailman » Version: 2.1.9

cpe:2.3:a:gnu:mailman:2.1.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-5024

Products

Pricing

Contact Us